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1 Fast detection of communication patterns in distributed executions J 
Thomas Kunz, Michiel F. H. Seuren 

November 1997 Proceedings of the 1997 conference of the Centre for Advanced 
Studies on Collaborative research 

Publisher: IBM Press 

Full text available: ^ pdf(4.21 MB) Additional Information: full citation , abstract , references , index terms 

Understanding distributed applications is a tedious and difficult task. Visualizations based 
on process-time diagrams are often used to obtain a better understanding of the 
execution of the application. The visualization tool we use is Poet, an event tracer 
developed at the University of Waterloo. However, these diagrams are often very complex 
and do not provide the user with the desired overview of the application. In our 
experience, such tools display repeated occurrences of non-trivial commun ... 

2 Hancock: A language for analyzing transactional data streams j 
Corinna Cortes, Kathleen Fisher, Daryl Pregibon, Anne Rogers, Frederick Smith 
March 2004 ACM Transactions on Programming Languages and Systems (TOPLAS), 

Volume 26 Issue 2 
Publisher: ACM Press 

Full text available: ^ pdf(217.55 KB) Additional Information: full citation , abstract, references , index terms 

Massive transaction streams present a number of opportunities for data mining 
techniques. The transactions in such streams might represent calls on a telephone 
network, commercial credit card purchases, stock market trades, or HTTP requests to a 
web server. While historically such data have been collected for billing or security 
purposes, they are now being used to discover how the transactors, for example, credit- 
card numbers or IP addresses, use the associated services.Over the past 5 years, w ... 



Keywords: Domain-specific languages, data mining, statistical models 



File and stora g e systems: Decentralized user authentication in a global file system Q 

Michael Kaminsky, George Savvides, David Mazieres, M. Frans Kaashoek 

October 2003 Proceedings of the nineteenth ACM symposium on Operating systems 

principles 
Publisher: ACM Press 

Full text available: *^ pdf(1 44.43 KB) Additional Information: full citation , abstract , references , index terms 

The challenge for user authentication in a global file system is allowing people to grant 
access to specific users and groups in remote administrative domains, without assuming 
any kind of pre-existing administrative relationship. The traditional approach to user 
authentication across administrative domains is for users to prove their identities through 
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a chain of certificates. Certificates allow for general forms of delegation, but they often 
require more infrastructure than is necessary to sup ... 

Keywords: ACL, SFS, authentication, authorization, credentials, file system, groups, 
users 



4 Shape-based retrieval and analysis of 3D models 
^ Thomas Funkhouser, Michael Kazhdan 

August 2004 Proceedings of the conference on SIGGRAPH 2004 course notes 
SIGGRAPH '04 

Publisher: ACM Press 

Full text available: ^| pdf(12.56 MB) Additional Information: full citation , abstract 

Large repositories of 3D data are rapidly becoming available in several fields, including 
mechanical CAD, molecular biology, and computer graphics. As the number of 3D models 
grows, there is an increasing need for computer algorithms to help people find the 
interesting ones and discover relationships between them. Unfortunately, traditional text- 
based search techniques are not always effective for 3D models, especially when queries 
are geometric in nature (e.g., find me objects that fit into thi ... 




5 Client-server computing in mobile environments 
Jin Jing, Abdelsalam Sumi Helal, Ahmed Elmagarmid 
June 1999 ACM Computing Surveys (CSUR), volume 3i issue 2 
Publisher: ACM Press 

Full text available: 1S| pdf (233.31 KB) Additional Information: full citation , abstract , references , citings , index 

terms , review 

Recent advances in wireless data networking and portable information appliances have 
engendered a new paradigm of computing, called mobile computing, in which users 
carrying portable devices have access to data and information services regardless of their 
physical location or movement behavior. In the meantime, research addressing 
information access in mobile environments has proliferated. In this survey, we provide a 
concrete framework and categorization of the various way ... 

Keywords: application adaptation, cache invalidation, caching, client/server, data 
dissemination, disconnected operation, mobile applications, mobile client/server, mobile 
compuing, mobile data, mobility awareness, survey, system application 



6 Computing curricula 2001 

^ September 2001 Journal on Educational Resources in Computing (JERIC) 

^ Publisher: ACM Press 

Full text available: 1g| pdf(61 3.63 KB ) AJJ . X . . ir . r „ . 

|!f rhtml(2.78 KB) " Adc,lt,onal Information: full citation , references , citings , index terms 



7 Level set and PDE methods for computer graphics 

David Breen, Ron Fedkiw, Ken Museth, Stanley Osher, Guillermo Sapiro, Ross Whitaker 
August 2004 Proceedings of the conference on SIGGRAPH 2004 course notes 

SIGGRAPH '04 
Publisher: ACM Press 

Full text available: pdf(17.07 MB) Additional Information: full citation , abstract , citings 

Level set methods, an important class of partial differential equation (PDE) methods, 
define dynamic surfaces implicitly as the level set (iso-surface) of a sampled, evolving nD 
function. The course begins with preparatory material that introduces the concept of using 
partial differential equations to solve problems in computer graphics, geometric modeling 
and computer vision. This will include the structure and behavior of several different types 
of differential equations, e.g. the level set eq ... 
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Extending document management systems with user-specific active pro perties 
Paul Dourish, W. Keith Edwards, Anthony LaMarca, John Lamping, Karin Petersen, Michael 
Salisbury, Douglas B. Terry, James Thornton 

April 2000 ACM Transactions on Information Systems (TOIS), volume 18 issue 2 
Publisher: ACM Press 

Full text available: 13E|odfM66-43 KB) Addjtjonal Information: full citation , abstract, references , citings, index 
{£ =^~^ terms 

Document properties are a compelling infrastructure on which to develop document 
management applications. A property-based approach avoids many of the problems of 
traditional heierarchical storage mechanisms, reflects document organizations meaningful 
to user tasks, provides a means to integrate the perspectives of multiple individuals and 
groups, and does this all within a uniform interaction framework. Document properties 
can reflect not only categorizations of documents and document use ... 

Keywords: active properties, component software, document management systems, 
document services, user experience 




9 IS '97: model curriculum and guidelines for undergraduate degree pro g rams in 
^ information systems 

Gordon B. Davis, John T. Gorgone, J. Daniel Couger, David L. Feinstein, Herbert E. 

Longenecker 

December 1996 ACM SIGMIS Database , Guidelines for undergraduate degree 

programs on Model curriculum and guidelines for undergraduate 
degree programs in information systems IS '97, volume 28 issue l 

Publisher: ACM Press 

Full text available: ^ pdf(7.24 MB) Additional Information: full citation , citings 



Im proved proxy re-encrvption schemes with applications to secure distributed storag e j 
Giuseppe Ateniese, Kevin Fu, Matthew Green, Susan Hohenberger 

February 2006 ACM Transactions on Information and System Security (TISSEC), volume 

9 Issue 1 
Publisher: ACM Press 

Full text available: |p pdf(331.59 KB) Additional Information: full citation , abstract , references , index terms 

In 1998, Blaze, Bleumer, and Strauss (BBS) proposed an application called atomic proxy 
re-encryption, in which a semitrusted proxy converts a ciphertext for Alice into a 
ciphertext for Bob without seeing the underlying plaintext. We predict that fast and secure 
re-encryption will become increasingly popular as a method for managing encrypted file 
systems. Although efficiently computable, the wide-spread adoption of BBS re-encryption 
has been hindered by considerable security risks. ... 

Keywords: Proxy re-encryption, bilinear maps, double decryption, key translation 



11 A pplication performance and flexibility on exokernel systems 

^ M. Frans Kaashoek, Dawson R. Engler, Gregory R. Ganger, Hector M. Briceno, Russell Hunt, 
^ David Mazieres, Thomas Pinckney, Robert Grimm, John Jannotti, Kenneth Mackenzie 

October 1997 ACM SIGOPS Operating Systems Review , Proceedings of the sixteenth 
ACM symposium on Operating systems principles SOSP '97, volume 31 issue 

5 

Publisher: ACM Press 

Full text available: ^pdf (2.39 MB ) Additional Information: full citation , references , citings, index terms 
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management system 

M. Tamer Ozsu, Randal Peters, Duane Szafron, Boman Irani, Anna Lipka, Adriana Munoz 
July 1995 The VLDB Journal — The International Journal on Very Large Data Bases, 

Volume 4 Issue 3 
Publisher: Springer-Verlag New York, Inc. 

Full text available: ^ pdf(2.78 MB) Additional Information: full citation , abstract , references , citings 

We describe the TIGUKAT objectbase management system, which is under development 
at the Laboratory for Database Systems Research at the University of Alberta. TIGUKAT 
has a novel object model, whose identifying characteristics include a purely behavioral 
semantics and a uniform approach to objects. Everything in the system, including types, 
classes, collections, behaviors, and functions, as well as meta-information, is a first-class 
object with well-defined behavior. In this way, the model abstr ... 

Keywords: database management, objectbase management, persistent storage system, 
reflective system 




13 Decentralizing a g lobal namin g service for improved performance and fault tolerance 
D. R. Cheriton, T. P. Mann 

May 1989 ACM Transactions on Computer Systems (TOCS), volume 7 issue 2 
Publisher: ACM Press 

Full text available- fiflpdf(3.19 MB ) Additional Information: full citation, abstract, references , citings, index 
• l£j ^ terms , review 

Naming is an important aspect of distributed system design. A naming system allows 
users and programs to assign character-string names to objects, and subsequently use 
the names to refer to those objects. With the interconnection of clusters of computers by 
wide-area networks and internetworks, the domain over which naming systems must 
function is growing to encompass the entire world. In this paper we address the problem 
of a global naming system, proposing a three-level naming ... 

14 Interactive Editin g S ystems: Part II 
Norman Meyrowitz, Andries van Dam 

September 1982 ACM Computing Surveys (CSUR), volume 14 issue 3 
Publisher: ACM Press 

Full text available: ^ pdf(9.17 MB) Additional Information: full citation , references , citings , index terms 



15 Improvin g the granularity of access control for Windows 2000 
^ Michael M. Swift, Anne Hopkins, Peter Brundrett, Cliff Van Dyke, Praerit Garg, Shannon 
^ Chan, Mario Goertzel, Gregory Jensenworth 

November 2002 ACM Transactions on Information and System Security (TISSEC), 

Volume 5 Issue 4 
Publisher: ACM Press 

Full text available: fig] pdf(447 78 KB) Additional Information: full citation , abstract , references , citings , index 

5 ' terms, review 

This article presents the mechanisms in Windows 2000 that enable fine-grained and 
centrally managed access control for both operating system components and applications. 
These features were added during the transition from Windows NT 4.0 to support the 
Active Directory, a new feature in Windows 2000, and to protect computers connected to 
the Internet. While the access control mechanisms in Windows NT are suitable for file 
systems and applications with simple requirements, they fall short of the ... 

Keywords: Access control lists, Microsoft Windows 2000, Windows NT, active directory 



16 Network Protocols 
Andrew S. Tanenbaum 
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December 1981 ACM Computing Surveys (CSUR), volume 13 issue 4 
Publisher: ACM Press 

Full text available: ^S |pdf(3.37 MB) Additional Information: full citation , references , citings , index terms 




17 Special system-oriented section: the best of SIGMOD '94: Sleepers and workaholics: 
caching strategies in mobile environments (extended version) 
Daniel Barbara, Tomasz Imielinski 

October 1995 The VLDB Journal - The International Journal on Very Large Data 

Bases, Volume 4 Issue 4 
Publisher: Springer-Verlag New York, Inc. 

Full text available: ^j) pdf(1.73 MB) Additional Information: full citation , abstract , references , citings 

In the mobile wireless computing environment of the future, a large number of users, 
equipped with low-powered palmtop machines, will query databases over wireless 
communication channels. Palmtop-based units will often be disconnected for prolonged 
periods of time, due to battery power saving measures; palmtops also will frequently 
relocate between different cells, and will connect to different data servers at different 
times. Caching of frequently accessed data items will be an important tech ni ... 

Keywords: caching, data management, information services, wireless 



18 Controlling access in multiuser interfaces 
Prasun Dewan, Honghai Shen 

March 1998 ACM Transactions on Computer-Human Interaction (TOCHI), volume 5 issue 
l 

Publisher: ACM Press 

Full text available: jj pdf(182.07 KB) Additional Information: full citation , abstract, references , citings, index 
^ terms , review 

Traditionally, access control has been studied in the areas of operating systems and 
database management systems. With the advent of multiuser interfaces, there is a need 
to provide access control in the user interface. We have developed a general framework 
for supporting access control in multiuser interfaces. It is based on the classical notion of 
an access matrix, a generalized editing-based model of user-application interaction, and a 
flexible model of user-user coupling. It has been de ... 

Keywords: access control, collaboration, computer-supported cooperative work, 
groupware, privacy, security, structure editors, user interface management systems 



19 Knowledge-based document retrieval in office environments: the Kabiria system 
Augusto Celentano, Maria Grazia Fugini, Silvano Pozzi 

July 1995 ACM Transactions on Information Systems (TOIS), volume 13 issue 3 
Publisher: ACM Press 

Full text available: jjgl pdf(2.14 MB) Additional Information: full citation , abstract , references , citings , index 

terms , review 

In the office environment, the retrieval of documents is performed using the concepts 
contained in the documents, information about the procedural context where the 
documents are used, and information about the regulations and laws that discipline the 
life of documents within a given application domain. To fulfill the requirements of such a 
sophisticated retrieval, we propose a document retrieval model and system based on the 
representation of knowledge describing the semantic contents of d ... 

Keywords: browser, class, hypertext, instance, knowledge base, link, object orientation, 
user interface 
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20 The 02 system Q 
O. Deux 

October 1991 Communications of the ACM, volume 34 issue 10 
Publisher: ACM Press 

Full text available: ^gj) pdf( 7.18 MB) Additional Information: full citation , references , citings, index terms 
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1 Bit-sequences: an adaptive cache invalidation method in mobile client/server Q 
environments 

Jin Jing, Ahmed Elmagarmid, Abdelsalam Sumi Helal, Rafael Alonso 
October 1997 Mobile Networks and Applications, volume 2 issue 2 
Publisher: Kluwer Academic Publishers 

Full text available: fg| pdf(454.04 KB ) Additional Information: full citation , abstract , references , citings , index 
' terms , review 

In this paper, we present Bit-Sequences (BS), an adaptive cache invalidation algorithm for 
client/server mobile environments. The algorithm uses adaptable mechanisms to adjust 
the size of the invalidation report to optimize the use of a limited communication 
bandwidth while retaining the effectiveness of cache invalidation. The proposed BS 
algorithm is especially suited for dissemination-based (or "server-push"-based) nomadic 
information service applications. The critical aspect ... 

2 Fast detec tion of communication p atterns in distribu te d e xe cu tions (jjl 
Thomas Kunz, Michiel F. H. Seuren 

November 1997 Proceedings of the 1997 conference of the Centre for Advanced 
Studies on Collaborative research 

Publisher: IBM Press 

Full text available: ^ pdf(4.21 MB) Additional Information: full citation , abstract , references , index terms 

Understanding distributed applications is a tedious and difficult task. Visualizations based 
on process-time diagrams are often used to obtain a better understanding of the 
execution of the application. The visualization tool we use is Poet, an event tracer 
developed at the University of Waterloo. However, these diagrams are often very complex 
and do not provide the user with the desired overview of the application. In our 
experience, such tools display repeated occurrences of non-trivial commun ... 



Flexible control of downloaded executable content 
Trent Jaeger, Atul Prakash, Jochen Liedtke, Nayeem Islam 

May 1999 ACM Transactions on Information and System Security (TISSEC), volume 2 

Issue 2 
Publisher: ACM Press 

Additional Information: full citation , abstract , references , citings , index 
terms , review 



Full text available: 



We present a security architecture that enables system and application a ccess control 
requirements to be enforced on applications composed from downloaded executable 
content. Downloaded executable content consists of messages downloaded from remote 
hosts that contain executables that run, upon receipt, on the downloading principal's 
machine. Unless restricted, this content can perform malicious actions, including accessing 
its downloading principal's private data and sending messages on th ... 



http://portal.acm.org/resu^ 10/8/2006 



Results (page 1): "application access" +signature +mapping 



Page 2 of 6 



Keywords: access control models, authentication, autorization machanisms, collaborative 
systems, role-based access control 



4 Authentication in the Taos operating system 

^ Edward Wobber, Martin Abadi, Michael Burrows, Butler Lampson 

>^ December 1993 ACM SIGOPS Operating Systems Review , Proceedings of the 

fourteenth ACM symposium on Operating systems principles SOSP 

'93, Volume 27 Issue 5 
Publisher: ACM Press 

Full text available: pdf(1.45 MB) Additional Information: full citation , abstract , references , citings , index 
• l£] ^ terms 

We describe a design and implementation of security for a distributed system. In our 
system, applications access security services through a narrow interface. This interface 
provides a notion of identity that includes simple principals, groups, roles, and 
delegations. A new operating system component manages principals, credentials, and 
secure channels. It checks credentials according to the formal rules of a logic of 
authentication. Our implementation is efficient enough to support a substantia ... 

5 Authentication in the Taos operating system 

^ Edward Wobber, Martm Abadi, Michael Burrows, Butler Lampson 
N< February 1994 ACM Transactions on Computer Systems (TOCS), volume 12 issue 1 
Publisher: ACM Press 

Full text available: ffl pdf(1 .88 MB) Additional Information: full citation , abstract , references , citings, index 

terms , review 

We describe a design for security in a distributed system and its implementation. In our 
design, applications gain access to security services through a narrow interface. This 
interface provides a notion of identity that includes simple principals, groups, roles, and 
delegations. A new operating system component manages principals, credentials, and 
secure channels. It checks credentials according to the formal rules of a logic of 
authentication. Our implementation is efficient enough to sup ... 

Keywords: cryptography, mathematical logic 



6 Query O ptimization: How foreign function integration conquers heterogeneous query Q 
^ processing 

^ Klaudia Hergula, Theo Harder 

October 2001 Proceedings of the tenth international conference on Information and 
knowledge management 

Publisher: ACM Press 

Full text available: fg,gdf,(1.48 MB) Additional Information: full citation , abstract, references , index terms 

With the emergence of application systems which encapsulate databases and related 
application components, pure data integration using, for example, a federated database 
system is not possible anymore. Instead, access via predefined functions is the only way 
to get data from an application system. As a result, retrieval of such heterogeneous and 
encapsulated data sources needs the combination of generic query as well as predefined 
function access. In this paper, we present a middleware approach s ... 

Keywords: cost model, federated database system, function integration, heterogeneous 
query processing, workflow management system, wrapper 



Hash-based labeling techniques for storage scaling 
D. Yao, Cyrus Shahabi, Per-Ake Larson 

April 2005 The VLDB Journal - The International Journal on Very Large Data Bases, 

Volume 14 Issue 2 
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Publisher: Springer-Verlag New York, Inc. 

Full text available: ' Q pdf(256.01 KB) Additional Information: full citation , abstract 

Scalable storage architectures allow for the addition or removal of storage devices to 
increase storage capacity and bandwidth or retire older devices. Assuming random 
placement of data objects across multiple storage devices of a storage pool, our 
optimization objective is to redistribute a minimum number of objects after scaling the 
pool. In addition, a uniform distribution, and hence a balanced load, should be ensured 
after redistribution. Moreover, the redistributed objects should be retriev ... 

Keywords: Load balancing, Random data placement, Scalable storage systems 



8 An analysis of XML database solutions for the management of MPEG-7 media 
descriptions 

Utz Westermann, Wolfgang Klas 

December 2003 ACM Computing Surveys (CSUR), Volume 35 Issue 4 
Publisher: ACM Press 

Full text available: Qpdf(448 76 KB) Add ' tional Information: full citation, abstract, references , index terms . 



review 



MPEG-7 constitutes a promising standard for the description of multimedia content. It can 
be expected that a lot of applications based on MPEG-7 media descriptions will be set up 
in the near future. Therefore, means for the adequate management of large amounts of 
MPEG-7-compliant media descriptions are certainly desirable. Essentially, MPEG-7 media 
descriptions are XML documents following media description schemes defined with a 
variant of XML Schema. Thus, it is reasonable to investigate curren ... 

Keywords: MPEG-7, XML database systems, multimedia databases 



9 Level set and PDE methods for computer graphics 

^ David Breen, Ron Fedkiw, Ken Museth, Stanley Osher, Guillermo Sapiro, Ross Whitaker 
>S August 2004 Proceedings of the conference on SIGGRAPH 2004 course notes 
SIGGRAPH '04 
Publisher: ACM Press 

Full text available: Q pdf(17.Q7 MB) Additional Information: full citation , abstract , citings 

Level set methods, an important class of partial differential equation (PDE) methods, 
define dynamic surfaces implicitly as the level set (iso-surface) of a sampled, evolving nD 
function. The course begins with preparatory material that introduces the concept of using 
partial differential equations to solve problems in computer graphics, geometric modeling 
and computer vision. This will include the structure and behavior of several different types 
of differential equations, e.g. the level set eq ... 

10 A model of OASIS role-based access control and its support for active security 
Jean Bacon, Ken Moody, Walt Yao 

November 2002 ACM Transactions on Information and System Security (TISSEC), 

Volume 5 Issue 4 
Publisher: ACM Press 

Full text available: fift pdf(352.06 KB ) Addltjonal Information: full citation , abstract , references , citings, index 

terms 

OASIS is a role-based access control architecture for achieving secure interoperation of 
services in an open, distributed environment. The aim of OASIS is to allow autonomous 
management domains to specify their own access control policies and to interoperate 
subject to service level agreements (SLAs). Services define roles and implement formally 
specified policy to control role activation and service use; users must present the required 
credentials, in an appropriate context, in order to activat ... 

Keywords: Certificates, OASIS, RBAC, distributed systems, policy, role-based access 
control, service-level agreements 
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11 SilkRoute: A framework for publishing relational data in XML 
^ Mary Fernandez, Yana Kadiyska, Dan Suciu, Atsuyuki Morishima, Wang-Chiew Tan 
>^ December 2002 ACM Transactions on Database Systems (TODS), volume 27 issue 4 
Publisher: ACM Press 

Full text available: fiB Pdf(687.91 KB) Additional Information: full citation, abstract, references, citings, index 
^ terms 

XML is the "lingua franca" for data exchange between interenterprise applications. In this 
work, we describe SilkRoute, a framework for publishing relational data in XML In 
SilkRoute, relational data is published in three steps: the relational tables are presented to 
the database administrator in a canonical XML view; the database administrator defines in 
the XQuery query language a public, virtual XML view over the canonical XML view; and 
an application formulates an XQuery query over the publ ... 

Keywords: XML, XML storage systems, XQuery 



12 Extending support for contracts in ebXML 
James Cole, Zoran Milosevic 

January 2001 Australian Computer Science Communications , Proceedings of the 

workshop on Information technology for virtual enterprises ITVE '01 , 
Proceedings of the workshop on Information technology for virtual 
enterprises ITVE '01, volume 23 issue 6 
Publisher: IEEE Computer Society , IEEE Computer Society , IEEE Computer Society Press 
Full text available: H pdf(947.74 KB ) 

|S Additional Information: full citation , abstract , references , citin gs 

W Publis he r Site 

This paper describes our proposal for extending the current ebXML standard - to provide 
more comprehensive support for electronic contracts. The paper first presents the current 
status of major B2B initiatives, focusing on their support for electronic contracts. Having 
found the ebXML meta-model to provide a suitable contractual foundation, we examine 
the full extent of the requirements for supporting electronic contracts, and propose 
extensions to the ebXML meta-model to facilitate these requir ... 

13 Ada ptation in middleware: Dynamic adapter generation for data inte g ratio n 
middleware 

Peng Gong, Ian Gorton, David Dagan Feng 

September 2005 Proceedings of the 5th international workshop on Software 
engineering and middleware SEM '05 

Publisher: ACM Press 

Full text available: ^ pdf(584.94 KB ) Additional information: full citation , abstract , references 

Relatively mature integration technologies are available that make application integration 
tractable from an engineering perspective. However, integrating multiple heterogeneous 
data sources into applications is still a time-consuming, costly and error-prone 
engineering task, because existing integration technologies are based on static integration 
architectures. Such architectures tightly couple a data source to the data integration 
infrastructure. This paper describes the architecture and evol ... 

Keywords: data source integration, dynamic adaptor, middleware 
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14 Stateful distributed interposition 
John Reumann, Kang G. Shin 

February 2004 ACM Transactions on Computer Systems (TOCS), volume 22 issue 1 
Publisher: ACM Press 

Full text available: ^j)df(833.84 KB) Additional Information: full citatio n, abstract, references , index terms 
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Interposition-based system enhancements for multitiered servers are difficult to build 
because important system context is typically lost at application and machine boundaries. 
For example, resource quotas and user identities do not propagate easily between 
cooperating services that execute on different hosts or that communicate with each other 
via intermediary services. Application-transparent system enhancement is difficult to 
achieve when such context information is obscured by complex servic ... 

Keywords: Distributed computing, component services, distributed context, multitiered 
services, operating systems, server consolidation 



15 Cryptography as an operating system service: A case study 

Angelos D. Keromytis, Jason L. Wright, Theo De Raadt, Matthew Burnside 
February 2006 ACM Transactions on Computer Systems (TOCS), Volume 24 Issue 1 
Publisher: ACM Press 

Full text available: H pdf(669. 12 KB) Additional Information: full citation , abstract , references , index terms 

Cryptographic transformations are a fundamental building block in many security 
applications and protocols. To improve performance, several vendors market hardware 
accelerator cards. However, until now no operating system provided a mechanism that 
allowed both uniform and efficient use of this new type of resource.We present the 
OpenBSD Cryptographic Framework (OCF), a service virtualization layer implemented 
inside the operating system kernel, that provides uniform access to accelerator functio .. 

Keywords: Encryption, authentication, cryptographic protocols, digital signatures, hash 
functions 



16 LeqionFS: a secure and scalable file system supporting cross-domain high- 
^ performance applications 

Brian S. White, Michael Walker, Marty Humphrey, Andrew S. Grimshaw 
November 2001 Proceedings of the 2001 ACM/IEEE conference on Supercomputing 

(CDROM) 
Publisher: ACM Press 



Full text available: 1|| pdf(499.88 KB) Addjtional Information: full citation , abstract , references , citings, index 

t erms 

Realizing that current file systems can not cope with the diverse requirements of wide- 
area collaborations/ researchers have developed data access facilities to meet their needs. 
Recent work has focused on comprehensive data access architectures. In order to fulfill 
the evolving requirements in this environment, we suggest a more fully-integrated 
architecture built upon the fundamental tenets of naming, security, scalability, 
extensibility, and adaptability. These form the underpinning of the Le ... 

17 Network processor architecture: Overcoming the memory wall in packet processing : 
hammers or ladders? 

Jayaram Mudigonda, Harrick M. Vin, Raj Yavatkar 

October 2005 Proceedings of the 2005 symposium on Architecture for networking and 

communications systems ANCS '05 
Publisher: ACM Press 

Full text available: |S) pdf (207.39 KB ) Additional Information: full citation , abstract , references , index terms 

Overhead of memory accesses limits the performance of packet processing applications. 
To overcome this bottleneck, today's network processors can utilize a wide-range of 
mechanisms-such as multi-level memory hierarchy, wide-word accesses, special-purpose 
result-caches, asynchronous memory, and hardware multi-threading. However, 
supporting all of these mechanisms complicates programmability and hardware design, 
and wastes system resources. In this paper, we address the following fundamental 
questi ... 

Keywords: data-caches, multithreading, network processors 
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18 Locality and visualisation: Decomposing memory performance: data structures and Q 
^ phases 

^ Kartik K. Agaram, Stephen W. Keckler, Calvin Lin, Kathryn S. McKinley 

June 2006 Proceedings of the 2006 international symposium on Memory 

management ISMM '06 
Publisher: ACM Press 

Full text available: ^ pdf(409.96 KB) Additional Information: full citation , abstract , references , index terms 

The memory hierarchy continues to have a substantial effect on application performance. 
This paper explores the potential of high-level application understanding in improving the 
performance of modern memory hierarchies, decomposing the often-chaotic address 
stream of an application into multiple more regular streams. We present two orthogonal 
methodologies. The first is a system called DTrack that decomposes the dynamic 
reference stream of a C program by tagging each reference with its global v ... 

Keywords: CPU2000, DTrack, SPEC, data structure, phase, simulation 



19 A framework for implementin g role-based access control using CORBA security 
service 

Konstantin Beznosov, Yi Deng 

October 1999 Proceedings of the fourth ACM workshop on Role-based access control 
Publisher: ACM Press 

Full text available: *g pdf(1.21 M B) Additional Information: full citation , references , citings , index terms 




20 Develop once deploy anywhere achieving adaptivity with a runtime linker/loader 
^ framework 

^ Joy Mukherjee, Srinidhi Varadarajan 

November 2005 Proceedings of the 4th workshop on Reflective and adaptive 

middleware systems ARM '05 
Publisher: ACM Press 

Full text available: ^ pdf(267.74 KB) Additional Information: full citation , abstract , references , index terms 

This paper presents Load and Let Link - a framework for flexible runtime loading and 
linking of procedural native code components. LLL has several novel aspects. First, it 
provides componentization without requiring an object-oriented language. Second, LLL 
performs linking at runtime, providing arbitrary code expansion, contraction and 
substitution. This enables (a) adaptive applications that can rewire themselves in 
response to dynamic conditions, (b) code patching for mission critical systems ... 

Keywords: adaptive applications, composition, runtime linking and loading, software 
component architectures 
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21 Safe and efficient sharing of persistent ob j ects in Thor 

B. Liskov, A. Adya, M. Castro, S. Ghemawat, R. Gruber, U. Maheshwari, A. C. Myers, M. Day, 
L. Shrira 

June 1996 ACM SIGMOD Record , Proceedings of the 1996 ACM SIGMOD international 

conference on Management of data SIGMOD '96, Volume 25 issue 2 
Publisher: ACM Press 

Additional Information: full citation , abstract , references , citings , index 
terms 



Full text available: |g pdf(1.42 MB) 



Thor is an object-oriented database system designed for use in a heterogeneous 
distributed environment. It provides highly-reliable and highly-available persistent storage 
for objects, and supports safe sharing of these objects by applications written in different 
programming languages. Safe heterogeneous sharing of long-lived objects requires 
encapsulation: the system must guarantee that applications interact with objects only by 
invoking methods. Although safety concerns are important, most obj ... 

22 An optimized implementation for VML based on pattern matching and dynamic j 
^ programming 

^ Weimin Chen, VolkerTurau 

November 1994 Proceedings of the third international conference on Information and 

knowledge management 
Publisher: ACM Press 

Full text available: ^ pdf(930.47 KB) Additional Information: full citation , abstract , references , index terms 

In an object-oriented database system (OODBS), objects exist persistently and object I/O 
is transparent to the programmer. Therefore, some mechanism in the system must 
initiate I/O as the program runs. In this paper we present an approach based on pattern 
matching and dynamic programming that allows a program to interact efficiently with the 
runtime storage layer. We are interested in allowing programs to manipulate very large 
objects without necessarily reading them entirely. If a program ... 

23 Virtual machine monitors: Implementing an untrusted operating system on trusted [ 
hardware 

David Lie, Chandramohan A. Thekkath, Mark Horowitz 

October 2003 Proceedings of the nineteenth ACM symposium on Operating systems 
principles 

Publisher: ACM Press 

Additional Information: full citation , abstract , references , citings , index 
terms 



Full text available: 



Recently, there has been considerable interest in providing "trusted computing platforms" 
using hardware— -~TCPA and Palladium being the most publicly visible examples. In this 
paper we discuss our experience with building such a platform using a traditional time- 
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sharing operating system executing on XOM~— ~a processor architecture that provides 
copy protection and tamper-resistance functions. In XOM, only the processor is trusted; 
main memory and the operating system are not trusted. Our opera ... 

Keywords: XOM, XOMOS, untrusted operating systems 



24 Replicating memory behavior for performance prediction 
Aditya Toomula, Jaspal Subhlok 

October 2004 Proceedings of the 7th workshop on Workshop on languages, 
compilers, and run-time support for scalable systems LCR '04 
Publisher: ACM Press 

Full text available: |g pdf(204.96 KB) Additional Information: full citation , abstract , references 

This paper introduces a method to monitor an application and generate a short synthetic 
"memory skeleton" program whose memory access pattern is representative of the 
application. In particular, the application and its memory skeleton should have similar 
cache behavior on any memory hierarchy architecture. The objective is to quickly 
estimate the cache performance of an application on any memory architecture by running 
its memory skeleton. The paper presents and validates a framework for automat ... 

25 The role-based access control system of a European bank: a case study and 
discussion 

Andreas Schaad, Jonathan Moffett, Jeremy Jacob 

May 2001 Proceedings of the sixth ACM symposium on Access control models and 

technologies 
Publisher: ACM Press 

Full text available: fSl pdf(2 01 0 8 KB) Additiona ' Information: full citation , abstract , references , citing s, index 

terms 

Research in the area of role-based access control has made fast progress over the last 
few years. However, little has been done to identify and describe existing role-based 
access control systems within large organisations. This paper describes the access control 
system of a major European Bank. An overview of the systems structure, its 
administration and existing control principles constraining the administration is given. In 
addition, we provide an answer to a key question - the ratio of ... 

Keywords: control principles, dual control, inheritance, least privilege, number of roles, 
role administration, role-based access control, separation of duties 



D ynamic Access Control: Dynamic and risk-aware network access manag ement 
Lawrence Teo, Gail-Joon Ahn, Yuliang Zheng 

June 2003 Proceedings of the eighth ACM symposium on Access control models and 
technologies 

Publisher: ACM Press 

Full text available: "H pdf(266.74 KB) Additional Information: full citation , abstract, references , index terms 

Traditional network security technologies such as firewalls and intrusion detection systems 
usually work according to a static ruleset only. We believe that a better approach to 
network security can be achieved if we use quantified levels of risk as an input. In this 
paper, we describe a dynamic access control architecture which uses risk to determine 
whether to allow or deny access by a source connection into the network. A simulation of 
our architecture shows favorable and promising results. 

Keywords: dynamic access control, network management, risk, risk awareness, role 
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28 Evaluating Network Processors using NetBench 
Gokhan Memik, William H. Mangione-Smith 

May 2006 ACM Transactions on Embedded Computing Systems (TECS), Volume 5 Issue 2 
Publisher: ACM Press 

Full text available: *g pdf(547.53 KB) Additional Information: full citation , abstract , references , index terms 

The Network Processor market is one of the fastest growing segments of the 
microprocessor industry today. In spite of this increasing market importance, there does 
not exist a common framework to compare the performance of different Network 
Processor designs. Our primary goal in this study is to fill this gap by creating the 
NetBench benchmarking suite. NetBench is designed to represent Network Processor 
workloads. It contains 11 programs that form 18 different applications. The programs are 
sel ... 

Keywords: Embedded systems, benchmarking, network processors 




29 File server scaling with network-attached secure disks 

^ Garth A. Gibson, David F. Nagle, Khalil Amiri, Fay W. Chang, Eugene M. Feinberg, Howard 
^ Gobioff, Chen Lee, Berend Ozceri, Erik Riedel, David Rochberg, Jim Zelenka 

June 1997 ACM SIGMETRICS Performance Evaluation Review , Proceedings of the 
1997 ACM SIGMETRICS international conference on Measurement and 
modeling of computer systems SIGMETRICS "97, Volume 25 issue l 
Publisher: ACM Press 

Full text available: B pdf(1.77MB) Additional Information: full citation, abstract , references , citings , index 

terms 

By providing direct data transfer between storage and client, network-attached storage 
devices have the potential to improve scalability for existing distributed file systems (by 
removing the server as a bottleneck) and bandwidth for new parallel and distributed file 
systems (through network striping and more efficient data paths). Together, these 
advantages influence a large enough fraction of the storage market to make commodity 
network-attached storage feasible. Realizing the technology's ful ... 

30 InfiniteRealitv: a real-time graphics system 

^ John S. Montrym, Daniel R. Baum, David L Dignam, Christopher J. Migdal 

August 1997 Proceedings of the 24th annual conference on Computer graphics and 
interactive techniques 

Publisher: ACM Press/Addison-Wesley Publishing Co. 

Full text available: ^j|_ pdf(697.27 KB ) Additional Information: full citation , references , citings, index terms 



Session 5: web system architectures: FDX: federating devices and web applications Q 
Martin Gaedke, Johannes Meinecke, Andreas Heil 

July 2006 Proceedings of the 6th international conference on Web engineering ICWE 
•06 

Publisher: ACM Press 

Full text available: T§j},pdf (658.06 KB ) Additional Information: full citation , abstract , references , index terms 

Electronic devices have been used for the support of everyday tasks in domestic and 
professional environments for some time now. Currently, there is a tendency towards a 
combined application of individual gadgets that are connected within locally confined 
environments via a diversity of protocols and technologies like UPnP, WLAN and 
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Bluetooth. As one step further in this direction, there is the vision of devices that are 
globally and uniformly connected through the WWW, extending the Mobile Web ... 

Keywords: architecture, device, federation, Integration, service infrastructure systems, 
web service 



32 Key management and key exchange: A temporal key management scheme for Q 
secure broadcasting of XML documents 

^ Elisa Bertino, Barbara Carminati, Elena Ferrari 

November 2002 Proceedings of the 9th ACM conference on Computer and 

communications security 
Publisher: ACM Press 

Full text available: ||| pdf(242.89 KB) Additional Information: full citation , abstract , references , index terms 

Secure broadcasting of web documents is becoming a crucial need for many web-based 
applications. Under the broadcast document dissemination strategy a web document 
source periodically broad-casts (portions of) its documents to a possibly large community 
of subjects, without the need of explicit subject requests. By secure broadcasting we 
mean that the delivery of information to sub-jects must obey the access control policies of 
the document source. Since different subjects may have the right to ... 

Keywords: XML, secure broadcasting, temporal key management 

33 Configuration-Sensitive Process Scheduling for FPGA-Based Computing Platforms Q 
G. Chen, M. Kandemir, U. Sezer 

February 2004 Proceedings of the conference on Design, automation and test in 
Europe - Volume 1 

Publisher: IEEE Computer Society 

Full text available: ' ggjpdf(159.61 KB) Additional Information: full citation , abstract , index terms 

Reconfigurable computing has become an important part of research in software systems 
and computer architecture. While prior research on reconfigurable computing have 
addressed architectural and compilation/programming aspects to some extent, there is 
still not much consensus on what kind of operating system (OS) support should be 
provided. In this paper, we focus on OS process scheduler, and demonstrate how it can 
be customized considering the needs of reconfigurable hardware. Our process sched ... 

34 Database programming languages: a functional approach Q 
Jurgen Annevelink 

April 1991 ACM SIGMOD Record , Proceedings of the 1991 ACM SIGMOD international 

conference on Management of data SIGMOD '91, volume 20 issue 2 
Publisher: ACM Press 

Full text available: ^,pdf(1.13 MB), Additional Information: full citation , references , citings, index terms 



35 Proceedings of a conference on Decision Support Systems. Santa Clara, California. Q 
^ January 24-26. 1977: A DSS for management of patients with a chronic illness 
v C. Frank Starmer, Robert A. Rosati 

January 1977 ACM SIGMIS Database, volume 8 issue 3 

Publisher: ACM Press 

Full text available: ^ pdf( 653.93 KB ) Additional Information: full citation , abstract , references 

There is uncertainty in the management of an individual with a chronic illness. The 
uncertainty results from lack of information about groups of similar patients. A feedback 
model for patient care is presented and its implementation discussed. The model requires 
characterization of patients at the time of entry into the health-care system, cataloging 
the methods of management used and assessing the response to treatments by following 
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the patient over long periods of time. With a computer-based da ... 

36 Embedded hardware desi g n case studies: Design flow for HW / SW acceleration 
^ transparency in the thumbpod secure embedded system 

^ David Hwang, Bo-Cheng Lai, Patrick Schaumont, Kazuo Sakiyama, Yi Fan, Shenglin Yang, 
Alireza Hodjat, Ingrid Verbauwhede 

June 2003 Proceedings of the 40th conference on Design automation 
Publisher: ACM Press 

Full text available: ^ pdf(250.69 KB) Additional Information: full citation , abstract , references , index terms 

This paper describes a case study and design flow of a secure embedded system called 
ThumbPod, which uses cryptographic and biometric signal processing acceleration. It 
presents the concept of HW/SW acceleration transparency, a systematic method to 
accelerate Java functions in both software and hardware. An example of acceleration 
transparency for a Rijndael encryption function is presented. The embedded prototype 
hardware platform is also described. Acceleration transparency yields software and ... 



37 Proceedings - only: Smart cards: a system support for service accessibility from 
^ hetero g eneous devices 

^ Raphael Marvie, Marie-Claude Pellegrini, Olivier Potonniee 

September 2000 Proceedings of the 9th workshop on ACM SIGOPS European 

workshop: beyond the PC: new challenges for the operating system 

Publisher: ACM Press 

Full text available: |§pdf(119.18 KB) Additional Information: full citation , abstract , references 

With the proliferation of computers which do not resemble computers, such as mobile 
phones, TV's, PDA's, end-users wish to take advantage of them to access their 
applications and information, wherever they are and whatever the device used This article 
deals with a common means to access a same service from various kinds of devices, and 
explains how smart cards, as mediums compatible with most types of terminals, can be 
used as application bootstrap. 



Caching: A multicast-based distributed file system for the internet 
Bjorn Gronvall, Ian Marsh, Stephen Pink 

September 1996 Proceedings of the 7th workshop on ACM SIGOPS European 
workshop: Systems support for worldwide applications 

Publisher: ACM Press 

Full text available: ^ pdf(799.81 KB) Additional Information: full citation , abstract , references , citings 

JetFile is a file system designed with multicast as its distribution mechanism. The goal is 
to support a large number of clients in an environment such as the Internet where hosts 
are attached to both high and low speed networks, sometimes over long distances. JetFile 
is designed for reduced reliance on servers by allowing client-to-client updates using 
scalable reliable multicast. Clients on high speed networks prefetch large numbers of files. 
On low speed networks such as wireless, special cac ... 
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39 Software evolution: Binary refactorina: improving code behind the scenes 
^ Eli Tilevich, Yannis Smaragdakis 

May 2005 Proceedings of the 27th international conference on Software engineering 
Publisher: ACM Press 

Full text available: |g| pdf(131.17 KB) Additional Information: full citation , abstract , references , index terms 

We present Binary Refactoring: a software engineering technique for improving the 
implementation of programs without modifying their source code. While related to regular 
refactoring in preserving a program's functionality, binary refactoring aims to capture 
modifications that are often applied to source code, although they only improve the 
performance of the software application and not the code structure. We motivate binary 
refactoring, present a binary refactoring catalogue, describe the desi ... 

Keywords: adaptation, bytecode engineering, maintenance, optimization, refactoring, 
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